Examice

Exam 1z0-908 All QuestionsBrowse all questions from this exam

Question 23

Which statement is true about MySQL Enterprise Transparent Data Encryption (TDE)?

MySQL TDE uses an appropriate keyring plugin to store the keys in a centralized location.

Both MyISAM and InnoDB tables can be encrypted by setting the keyring_engine = ALL variable in the MySQL configuration file.

Lost tablespace encryption keys can be regenerated only if the master database key is known or present in the Key Vault specification.

TDE can encrypt InnoDB and MyISAM tables only when the tables are stored in the SYSTEM tablespace.

Correct Answer: A

MySQL TDE uses an appropriate keyring plugin to store the keys in a centralized location. This allows for secure storage and management of encryption keys, ensuring that they are not stored in a location that could be compromised along with the data they protect.

Discussion

FelipeKOption: A

InnoDB uses a two-tier encryption key architecture, consisting of a master encryption key and tablespace keys. When a tablespace is encrypted, a tablespace key is encrypted and stored in the tablespace header. When an application or authenticated user wants to access encrypted tablespace data, InnoDB uses a master encryption key to decrypt the tablespace key. The decrypted version of a tablespace key never changes, but the master encryption key can be changed as required. This action is referred to as master key rotation.

marklvOption: A

can't encrypt MyISAM, so BD are out., A and C look right.

ZehirOption: A

A. https://www.mysql.com/products/enterprise/tde.html#:~:text=MySQL%20Enterprise%20Transparent%20Data%20Encryption%20(TDE)%20protects%20your%20critical%20data,Data%20Security%20Standard%20(PCI%20DSS)